$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143818.roa File: AS143818.roa (raw, json) Hash identifier: q9kTNrbI/CzrPMVx10lJVH8Ux1luymLSWnjIs1o4EhM= Subject key identifier: 95:FC:8E:5F:93:BF:6D:52:32:02:3D:E5:3D:09:B4:9A:A0:17:21:57 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 53A57EC3FE4453598075ED1ED8467476DE652BEE Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143818.roa Signing time: Wed 04 Mar 2026 06:12:59 +0000 ROA not before: Wed 04 Mar 2026 06:07:59 +0000 ROA not after: Wed 03 Mar 2027 06:12:59 +0000 asID: 143818 IP address blocks: 240a:a490::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:a5:7e:c3:fe:44:53:59:80:75:ed:1e:d8:46:74:76:de:65:2b:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:07:59 2026 GMT Not After : Mar 3 06:12:59 2027 GMT Subject: CN=95FC8E5F93BF6D5232023DE53D09B49AA0172157 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:24:28:1e:e2:e4:61:5f:d0:4a:2c:e6:06:71: 43:be:ae:2b:3d:8a:91:2c:84:6b:17:e2:c6:69:a1: b8:9e:0c:b9:91:be:83:82:f1:5e:ae:fd:31:f0:e4: a2:51:6b:25:3c:17:a7:9c:77:46:f1:3e:1b:42:eb: 44:72:7d:7a:f1:05:d6:04:8a:14:00:98:fa:15:2e: 5d:19:99:13:6e:6a:7c:bf:0a:c4:d6:ed:a5:3d:f1: c8:b2:55:33:8a:e6:42:be:98:59:e1:d0:eb:c2:e9: cf:e1:34:47:ff:bb:7e:02:0e:d8:f1:33:30:4d:ce: f3:04:30:4a:1b:37:eb:22:a3:9c:1c:7b:69:ad:aa: 80:a0:05:50:f3:46:c6:73:ed:f3:ae:70:db:09:35: 1e:aa:88:01:10:a5:b8:22:63:ea:d5:1c:f6:25:14: 6c:4b:cd:69:84:01:41:11:e3:c9:61:9a:65:57:17: 16:99:03:f4:29:18:77:17:20:06:b9:8a:d3:40:05: a6:1c:77:04:6b:01:18:83:cf:46:3b:cb:3b:fe:ab: de:47:05:6f:1e:f3:9c:8e:fb:87:5f:10:f0:19:95: 84:1e:65:61:e9:5a:12:33:2e:2c:3b:bc:61:76:08: 40:e2:de:bb:0a:a5:f6:bf:1a:84:46:0f:f6:89:ac: 26:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:FC:8E:5F:93:BF:6D:52:32:02:3D:E5:3D:09:B4:9A:A0:17:21:57 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143818.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a490::/32 Signature Algorithm: sha256WithRSAEncryption d0:48:d9:f4:1a:46:1a:39:55:aa:16:d6:de:42:79:b6:26:7d: 3f:42:4e:6f:a7:05:91:7b:aa:8d:3d:a1:94:63:79:5f:51:83: 5d:bc:2f:f3:ef:e9:2b:b8:bf:43:00:df:47:10:46:9b:09:5f: ec:ed:7f:e1:71:17:28:ee:64:97:d6:8f:72:bc:52:f4:66:24: 69:21:73:77:d3:51:4f:03:91:81:60:c2:d7:0f:a3:5c:34:15: c6:85:b6:22:09:2f:d7:d4:8a:b5:77:f7:82:54:05:44:d2:c0: 25:9d:0a:f9:59:1a:37:05:3b:23:c2:d5:b3:f5:3b:ee:c2:8c: d8:58:1f:87:3c:6a:8f:af:55:58:3d:2e:13:c8:52:60:8e:7b: 9f:85:1d:74:2d:8c:22:22:86:3f:a5:85:f7:7b:99:2a:ab:84: 0b:d9:62:0d:e3:2b:60:f4:67:2a:f7:35:4f:cc:40:0f:15:5b: f5:87:c0:fe:ec:56:27:14:54:35:a0:ae:31:47:57:e1:cc:b9: 27:9d:db:91:86:02:c6:5b:cb:22:4e:0c:18:01:39:47:7a:9e: 35:9d:fe:ee:e6:f9:63:20:5c:15:6a:f5:78:b3:84:04:0f:bd: ec:b9:00:96:44:f5:12:20:18:13:d3:98:32:44:06:aa:16:9f: 9a:ef:cd:ae -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUU6V+w/5EU1mAde0e2EZ0dt5lK+4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDc1OVoX DTI3MDMwMzA2MTI1OVowMzExMC8GA1UEAxMoOTVGQzhFNUY5M0JGNkQ1MjMyMDIz REU1M0QwOUI0OUFBMDE3MjE1NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALIkKB7i5GFf0Eos5gZxQ76uKz2KkSyEaxfixmmhuJ4MuZG+g4LxXq79MfDk olFrJTwXp5x3RvE+G0LrRHJ9evEF1gSKFACY+hUuXRmZE25qfL8KxNbtpT3xyLJV M4rmQr6YWeHQ68Lpz+E0R/+7fgIO2PEzME3O8wQwShs36yKjnBx7aa2qgKAFUPNG xnPt865w2wk1HqqIARCluCJj6tUc9iUUbEvNaYQBQRHjyWGaZVcXFpkD9CkYdxcg BrmK00AFphx3BGsBGIPPRjvLO/6r3kcFbx7znI77h18Q8BmVhB5lYelaEjMuLDu8 YXYIQOLeuwql9r8ahEYP9omsJvcCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSV/I5f k79tUjICPeU9CbSaoBchVzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzgxOC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pJAwDQYJKoZIhvcNAQELBQADggEBANBI2fQaRho5VaoW1t5CebYmfT9CTm+nBZF7 qo09oZRjeV9Rg128L/Pv6Su4v0MA30cQRpsJX+ztf+FxFyjuZJfWj3K8UvRmJGkh c3fTUU8DkYFgwtcPo1w0FcaFtiIJL9fUirV394JUBUTSwCWdCvlZGjcFOyPC1bP1 O+7CjNhYH4c8ao+vVVg9LhPIUmCOe5+FHXQtjCIihj+lhfd7mSqrhAvZYg3jK2D0 Zyr3NU/MQA8VW/WHwP7sVicUVDWgrjFHV+HMuSed25GGAsZbyyJODBgBOUd6njWd /u7m+WMgXBVq9XizhAQPvey5AJZE9RIgGBPTmDJEBqoWn5rvza4= -----END CERTIFICATE-----Generated at Sat Mar 28 11:46:10 2026 by rpki-client